CVE-2010-1387

N/A Unknown

Published: June 18, 2010 Modified: April 29, 2026

Description

Use-after-free vulnerability in JavaScriptCore in WebKit in Apple iTunes before 9.2 on Windows, and Apple iOS before 4 on the iPhone and iPod touch, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors related to page transitions, a different vulnerability than CVE-2010-1763 and CVE-2010-1769.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html

Source: product-security@apple.com

Vendor Advisory

http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

Source: product-security@apple.com

Vendor Advisory

http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html

Source: product-security@apple.com

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

Source: product-security@apple.com

http://secunia.com/advisories/40196

Source: product-security@apple.com

Vendor Advisory

http://secunia.com/advisories/41856

Source: product-security@apple.com

Vendor Advisory

http://secunia.com/advisories/42314

Source: product-security@apple.com

Vendor Advisory

http://secunia.com/advisories/43068

Source: product-security@apple.com

Vendor Advisory

http://securitytracker.com/id?1024108

Source: product-security@apple.com

http://support.apple.com/kb/HT4220

Source: product-security@apple.com

Vendor Advisory

http://support.apple.com/kb/HT4225

Source: product-security@apple.com

Vendor Advisory

http://support.apple.com/kb/HT4456

Source: product-security@apple.com

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2011:039

Source: product-security@apple.com

http://www.securityfocus.com/bid/41016

Source: product-security@apple.com

http://www.ubuntu.com/usn/USN-1006-1

Source: product-security@apple.com

http://www.vupen.com/english/advisories/2010/1512

Source: product-security@apple.com

Vendor Advisory

http://www.vupen.com/english/advisories/2010/2722

Source: product-security@apple.com

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0212

Source: product-security@apple.com

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0552

Source: product-security@apple.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/59506

Source: product-security@apple.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7061

Source: product-security@apple.com

http://lists.apple.com/archives/security-announce/2010//Jun/msg00002.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/40196

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/41856

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/42314

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/43068

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1024108

Source: af854a3a-2127-422b-91ae-364da2661108

http://support.apple.com/kb/HT4220

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://support.apple.com/kb/HT4225

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://support.apple.com/kb/HT4456

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2011:039

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/41016

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/USN-1006-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2010/1512

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2010/2722

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0212

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.vupen.com/english/advisories/2011/0552

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/59506

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7061

Source: af854a3a-2127-422b-91ae-364da2661108

42 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

8.5%

92th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-399

Affected Vendors

apple microsoft

Related CVEs

CVE-2026-44403 7.2

CVE-2026-44246 7.2

CVE-2026-44240 7.5

CVE-2026-44232 N/A

CVE-2026-44224 N/A